The ease of using the internet has allowed many of us to drop our guard when we’re online, and identity thieves are taking advantage. 

“People think, ‘Oh no, it’s not going to happen to me.’ There’s a little bit of apathy going on, which is dangerous,” says Steve Schwartz, president of Identity Guard.

From oversharing on social media to using the same password across the internet, here’s a look at five mistakes people make online that put their personal information at risk.

  • 1Not Updating the OS and Browser

    REUTERS

    One of the easiest ways to stay protected when surfing the web is to make sure the operating system and browser are up to date, says Robert Siciliano, identity theft expert for bestIDtheftcompanys.com.

    “When you don’t update your operating system, critical security patches are outdated which makes devices vulnerable to fraud.”

    Having the latest web browser, whether it’s Internet Explorer, FireFox or Safari, also extends protection.

    Siciliano also recommends users make sure all their anti-virus, anti-malware and firewall software is current.

  • 2Not Being Picky

    Everyone wants a deal, but compromising your identity won’t be worth saving a few extra dollars by using an unsafe website.

    “A big worry for consumers should be the threat of watering holes,” says Neal O’Farrell, executive director of The Identity Theft Council. “These are websites that have been infected with malware because of unpatched vulnerabilities.”

    He says an easy way to stay safe when shopping online is to use a free browser security tools that check the security of a website before you click on it. He pointed to McAfee Site Advisor as a tool available to consumers. “These tools should be standard for all surfers, yet most are not aware of them even though many antivirus companies offer them free.”

  • 3Always Using the Same Password

    It’s hard to remember every username and password, but resist the temptation to make one general log in for all your frequented websites.

    “The real problem occurs when people use the same user name and password on their banking site as they do on some small shopping site,” says Schwartz. That small website may not have the same security in place and if criminals are able to get your information from that site, they will start using it other sites, and before you know it, your bank account information has been compromised. “There are tools out there that can help you create and manage strong passwords,” says Schwartz. “You want something that will work when you are on your iPad, phone or computer.”

  • 4Oversharing

    Reuters

    Social networks have become online brag books, and that’s risky business since we often share information that is commonly used in security questions.

    “What makes people vulnerable is they plug in information that can be used to crack a password reset,” says Siciliano. Many websites ask for answers to knowledge-based questions such as your mother’s maiden name, where you went to high school or your best friend’s last name in case of an account lockout or password reset. Those answers are supposed to be personal, but are increasingly being revealed online.

    “When you explain to the world your life, recognize that those explanations and those status updates can be used against you,” warns Siciliano. “You might want to consider being more businesslike as opposed to being more personal on social networks.”

  • 5Using Public Wi-Fi

    REUTERS

    Public Wi-Fi hot spots make it easier to check your email, surf the web and even transfer money from wherever you are, but they often aren’t secure and tend to be easy for scammers to hack and steal your information.

    Schwartz recommends never using public hot spots to conduct business or do any personal online. “Use your carrier cell signal or wait until you get home. It’s way too easy for criminals to sniff out what’s going on on a public Wi-Fi and capture information coming through.”